CVE-2020-1882

Summary

Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180(C185E6R3P3), earlier than 10.0.0.180(C432E6R1P7), earlier than 10.0.0.180(C636E5R2P3); HUAWEI Mate 20 RS versions earlier than 10.0.0.175(C786E70R3P8); HUAWEI Mate 20 X versions earlier than 10.0.0.176(C00E70R2P8); and Honor Magic2 versions earlier than 10.0.0.175(C00E59R2P11) have an improper authorization vulnerability. Due to improper authorization of some function, attackers can bypass the authorization to perform some operations.

Affected Software

VendorProductVersion RangeStatus
HuaweiEver-L29Bearlier than 10.0.0.180(C185E6R3P3)affected
HuaweiEver-L29Bearlier than 10.0.0.180(C432E6R1P7)affected
HuaweiEver-L29Bearlier than 10.0.0.180(C636E5R2P3)affected
HuaweiHUAWEI Mate 20 RSearlier than 10.0.0.175(C786E70R3P8)affected
HuaweiHUAWEI Mate 20 Xearlier than 10.0.0.176(C00E70R2P8)affected
HuaweiHonor Magic2earlier than 10.0.0.175(C00E59R2P11)affected

Weaknesses

  • Improper Authorization

ADP Enrichment

CVE Program Container

Additional References

References